<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta http-equiv="content-type" content="text/html; charset=ISO-8859-1">
</head>
<body bgcolor="#ffffff" text="#000000">
<pre>This message was generated by the Security Alerts service ( Free Trial 14th of August - 14th of September )
<a class="moz-txt-link-freetext" href="http://www.opensips.org/Resources/AlertsMain">http://www.opensips.org/Resources/AlertsMain</a><b>
SVN commit</b>:
<a class="moz-txt-link-freetext" href="http://opensips.svn.sourceforge.net/opensips/?rev=9244&view=rev">http://opensips.svn.sourceforge.net/opensips/?rev=9244&view=rev</a>
<b>Severity</b>: Low
<b>Version</b> : 1.8, trunk
<b>Affected modules</b> : b2b_entities
<b>Effect</b> : In-dialog UPDATEs are rejected
<b>Affected scenarios</b>: In B2B usage, a received UPDATE in-dialog requests will not be
matched against existing B2B sessions. This will break ant attempt of the end-point
to change dialog parameters.
<b>Description</b> : Because of TAGs mixing, an UPDATE coming from the caller side did not
match its dialog.
<b>Risks</b> : Low.
<b>Update</b> :
- if you have an SVN checkout, only 1.8 and trunk were fixed; so
update to a revision later than 8879 (trunk) or 9244 (1.8 branch) ;
- if you have OpenSIPS from sources, download and apply the patch from
<a class="moz-txt-link-freetext" href="http://opensips.svn.sourceforge.net/viewvc/opensips/branches/1.8/modules/b2b_entities/dlg.c?r1=9244&r2=9243&pathrev=9244">http://opensips.svn.sourceforge.net/viewvc/opensips/branches/1.8/modules/b2b_entities/dlg.c?r1=9244&r2=9243&pathrev=9244</a>
or see the attached patch;
- if using tarballs, they were already regenerated (and include the fix)
- If using the official Debian package (apt.opensips.org), they are also
re-generated including the fix.</pre>
<br>
<pre class="moz-signature" cols="72">--
Bogdan-Andrei Iancu
OpenSIPS Founder and Developer
<a class="moz-txt-link-freetext" href="http://www.opensips-solutions.com">http://www.opensips-solutions.com</a></pre>
</body>
</html>